$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: ItlHF5k+dRb7OUQskxoWc6EMfpVf+jjoAoR9ReC2Me4= Subject key identifier: 96:41:2E:F8:F6:0A:B8:3B:55:81:98:CF:97:AD:ED:A0:54:69:15:6D Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2C37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2B8E Signing time: Sat 14 Jun 2025 15:31:54 +0000 Manifest this update: Sat 14 Jun 2025 15:31:53 +0000 Manifest next update: Sat 21 Jun 2025 15:31:53 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: PiimbA7/OzEiijd3TOYKBpjsQ3etoojjtyOhybg54co=) 2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: NyqTZQOkUqWoaM40ZktUlOiopL6FbxfHLQstlqudq2c=) 3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: LZsU00B4/gx6lo+GhGlRRaLNP1lXi+x7ZDLzlvJoUls=) 4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: je3auOg70+6cT16YOal/ttbSxW+A5XuODnJlOPCEZSc=) 5: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: aSO9wjURcYGva8bAjVzZpymdiAuS5bByHQh+Eq4/Ung=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:31:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11319 (0x2c37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128, serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: Jun 14 15:31:53 2025 GMT Not After : Jun 21 15:31:53 2025 GMT Subject: CN=684d95e9-c53b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:75:86:2e:e9:93:7e:ef:6f:89:2f:9f:6f:4e: a9:68:50:df:d6:c1:00:cf:b1:ee:b4:5d:6e:7c:cc: a1:14:34:03:ac:ed:04:79:fc:63:6d:05:33:49:c0: 98:a8:2a:36:59:46:60:06:13:0c:24:f8:56:c1:fd: 93:e1:ef:b8:14:cc:f1:23:5a:5c:f7:6b:07:bd:74: 8f:1d:17:0c:4f:75:6d:93:b2:33:82:e3:e8:af:cd: e7:5a:16:47:49:66:89:be:54:d5:ab:25:ec:55:fc: 45:c3:21:95:f1:d9:f2:9c:08:5f:d2:dd:53:1d:9f: bc:5d:be:c8:b6:39:14:c7:22:df:09:bf:f7:7d:f5: f1:b8:55:4f:99:97:a4:28:01:6c:9d:26:c8:6f:63: 85:90:cb:e0:c5:d2:f3:b0:f4:2e:c0:bb:e9:b6:f3: 4b:76:3f:11:7a:dd:6f:1d:cb:a3:f5:41:07:23:71: a6:f3:29:bd:7f:92:0d:e2:6d:de:51:ec:ab:dd:ac: 38:bd:0b:c4:39:e4:f1:38:23:80:f5:83:f2:3e:67: 60:1e:bb:01:b7:79:7b:98:ee:90:93:b8:ab:22:7b: a9:7c:62:85:a0:fd:ea:79:fa:4a:86:43:6a:08:52: e5:88:a5:eb:b9:f6:55:2b:bf:21:60:f0:40:7b:08: 24:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:41:2E:F8:F6:0A:B8:3B:55:81:98:CF:97:AD:ED:A0:54:69:15:6D X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:36:9f:b4:3e:bf:85:12:60:bd:7c:28:1c:21:fe:b6:53:c2: 5a:72:e9:fa:55:e9:3c:38:3d:f3:0e:1f:a6:ca:79:8f:be:54: 67:ac:d2:fd:e5:7d:09:87:d4:5d:b3:fa:10:ad:20:d4:76:4e: 0c:2d:6a:c1:0f:88:40:c8:58:53:96:89:43:88:8e:2f:a4:31: 82:6d:30:8c:12:f8:9b:0a:08:23:4b:03:18:3c:87:82:50:c0: 16:3d:a3:fc:03:8f:0a:91:74:cd:dc:87:69:fc:c5:33:49:6a: dc:19:4f:2f:61:3e:09:da:d8:aa:17:75:00:aa:0c:e6:d8:0b: 61:28:0b:40:02:ce:b8:0b:e5:be:4d:40:3b:fa:5d:89:66:7f: f4:0d:ed:b2:4e:f5:0a:1b:b6:63:3e:a5:14:ae:19:81:f8:40: 2b:b8:ea:1a:b7:29:67:90:63:fd:c0:d2:79:ff:6e:d9:90:a5: 07:13:ca:7b:91:37:e6:bd:43:fc:2e:7c:cd:ae:c0:be:f3:4f: 34:e6:3c:ab:37:de:4d:7b:f4:2b:f5:71:e4:a0:ea:34:7a:c8: 98:8c:37:a8:60:fa:83:3e:07:23:cf:8d:bc:b9:b9:ec:fb:f6: 7a:ee:d2:7d:7c:04:ff:25:d1:79:66:49:11:74:13:6d:0b:40: 31:c4:78:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjUwNjE0MTUzMTUzWhcNMjUwNjIxMTUzMTUzWjAYMRYwFAYD VQQDEw02ODRkOTVlOS1jNTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3WGLumTfu9viS+fb06paFDf1sEAz7HutF1ufMyhFDQDrO0EefxjbQUzScCY qCo2WUZgBhMMJPhWwf2T4e+4FMzxI1pc92sHvXSPHRcMT3Vtk7IzguPor83nWhZH SWaJvlTVqyXsVfxFwyGV8dnynAhf0t1THZ+8Xb7ItjkUxyLfCb/3ffXxuFVPmZek KAFsnSbIb2OFkMvgxdLzsPQuwLvptvNLdj8Ret1vHcuj9UEHI3Gm8ym9f5IN4m3e Ueyr3aw4vQvEOeTxOCOA9YPyPmdgHrsBt3l7mO6Qk7irInupfGKFoP3qefpKhkNq CFLliKXrufZVK78hYPBAewgk3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZBLvj2 Crg7VYGYz5et7aBUaRVtMB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9Np+0Pr+FEmC9fCgcIf62U8Jacun6Vek8OD3zDh+mynmPvlRnrNL9 5X0Jh9Rds/oQrSDUdk4MLWrBD4hAyFhTlolDiI4vpDGCbTCMEvibCggjSwMYPIeC UMAWPaP8A48KkXTN3Idp/MUzSWrcGU8vYT4J2tiqF3UAqgzm2AthKAtAAs64C+W+ TUA7+l2JZn/0De2yTvUKG7ZjPqUUrhmB+EAruOoatylnkGP9wNJ5/27ZkKUHE8p7 kTfmvUP8LnzNrsC+80805jyrN95Ne/Qr9XHkoOo0esiYjDeoYPqDPgcjz428ubns +/Z67tJ9fAT/JdF5ZkkRdBNtC0AxxHjX -----END CERTIFICATE-----Generated at Sun Jun 15 09:32:58 2025 by rpki-client